[Top] [All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-users] XCP antispoof

  • To: xen-users@xxxxxxxxxxxxxxxxxxx
  • From: Jorge Armando Medina <jmedina@xxxxxxxxxxxxxxx>
  • Date: Mon, 10 May 2010 14:03:46 -0500
  • Delivery-date: Mon, 10 May 2010 12:05:37 -0700
  • List-id: Xen user discussion <xen-users.lists.xensource.com>
  • Openpgp: id=28E40632; url=
C V wrote:
> I've been trying to emulate the Xen antispoof features in XCP. This requires 
> the xt_physdev iptables extension. Here's what I've done:
> 1. Downloaded the XCP DDK VM and installed it
> 2. Downloaded the Dom0 kernel sources from 
> http://www.xen.org/files/XenCloud/Software/latest/sources/source-1.iso to a 
> running DDK VM instance
> 3. make menuconfig inside the kernel sources and enable physdev inside 
> Networking->Network Packet Filtering->Core Netfilter Configuration->physdev 
> match support
> 4. make modules modules_install inside the kernel sources
> 5. Copy resulting xt_physdev.ko to dom0
>   
I think step 4 will copy the modulo in /lib/modules/kern-version/..
> 6. insmod results in an error:
> insmod ./xt_physdev.ko 
> insmod: error inserting './xt_physdev.ko': -1 Unknown symbol in module
>   
Did you depmod after installing the modules?

> dmesg shows the error to be:
> xt_physdev: disagrees about version of symbol xt_register_matches
> xt_physdev: Unknown symbol xt_register_matches
> Modinfo reports the correct version:
> # modinfo xt_physdev.ko
> filename:       xt_physdev.ko
> alias:          ip6t_physdev
> alias:          ipt_physdev
> description:    Xtables: Bridge physical device match
> author:         Bart De Schuymer <bdschuym@xxxxxxxxxx>
> license:        GPL
> srcversion:     4D030E98D0F909D8DA92F33
> depends:        x_tables
> supported:      yes
> vermagic:       2.6.27.42-0.1.1.xs0.1.1.737.1065xen SMP mod_unload 
> modversions Xen 686 
>
>
> It seems that it requires a complete kernel rebuild and re-install. Can 
> anybody confirm this or help me with an alternate way of building required 
> iptables extensions?
>
> Thanks
> --
> C V
>
>
> _______________________________________________
> Xen-users mailing list
> Xen-users@xxxxxxxxxxxxxxxxxxx
> http://lists.xensource.com/xen-users
>   


-- 
Jorge Armando Medina
Computación Gráfica de México
Web: http://www.e-compugraf.com
Tel: 55 51 40 72, Ext: 124
Email: jmedina@xxxxxxxxxxxxxxx
GPG Key: 1024D/28E40632 2007-07-26
GPG Fingerprint: 59E2 0C7C F128 B550 B3A6  D3AF C574 8422 28E4 0632



_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

 

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.

Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.